From the ICO: An undertaking to comply with the seventh data protection principle has been signed by Aberdeenshire Council after a paper file was lost by an employee of the Adult Mental Health section of the council’s Social Work service. The employee had placed the file on the roof of his car before driving off….
Are Data Breach Investigations Privileged?
Over the past few years, I’ve seen more and more references to the idea that if breached entities have their legal counsel arrange for a forensics or breach investigation, the breach investigation would be considered privileged communications or attorney-client work. Needless to say, I am not happy at any end-run around transparency involving breach investigations….
Inland Empire Colleges Report E-mail Error May Have Exposed More than 35,000 Students’ Information
Tony Shin and Kelly Goff report: Confidential information about more than 35,000 students enrolled at community colleges in Riverside County may have been compromised, the district said in a letter Monday. The records affected belong to students enrolled during the spring 2014 semester at Riverside City, Norco and Moreno Valley colleges. A database containing information…
Evernote: Important information regarding your discussion forum account
Posted yesterday on Evernote: (Users impacted by this announcement will have received an email) The vendor that operates https://discussion.evernote.com has notified us that they had been hacked. The hacker was able to retrieve our forum members’ profile information. We don’t believe that the hacker accessed any private forum messages. Our forum is a completely separate service from…
Second member of #NullCrew arrested (updated to add complaint)
Following the arrest of a Quebec teen last week in the hacking of a Bell Canada supplier, a second person associated with #NullCrew (@NullCrew_FTS) has now been arrested. Kim Janssen reports: A hacker who targeted big businesses — including Comcast and Canadian Bell — as well as schools, including the University of Virginia, will face…
UK: Payouts suggested for "irresponsibly used" patient data in care.data scheme – report
Press Association reports: Patients whose personal information is misused in the new medical records data-sharing scheme should be able to sue the NHS, a new report suggests. People whose data is lost or “irresponsibly used” under the care.data initiative should be able to claim compensation through the NHS Litigation Authority, the authors said. The group…